OpenOffice.org 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-complicit
attackers to conduct unauthorized activities via an OpenOffice document with
a malicious BASIC macro, which is executed without prompting the user.
(CVE-2006-2198)

An unspecified vulnerability in Java Applets in OpenOffice.org 1.1.x up to
1.1.5 and 2.0.x before 2.0.3 allows user-complicit attackers to escape the
Java sandbox and conduct unauthorized activities via certain applets in
OpenOffice documents. (CVE-2006-2199)